6.3

CVE-2018-0833

Exploit
The Microsoft Server Message Block 2.0 and 3.0 (SMBv2/SMBv3) client in Windows 8.1 and RT 8.1 and Windows Server 2012 R2 allows a denial of service vulnerability due to how specially crafted requests are handled, aka "SMBv2/SMBv3 Null Dereference Denial of Service Vulnerability".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 40.65% 0.985
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.3 1.6 3.6
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 6.3 6.8 6.9
AV:N/AC:M/Au:S/C:N/I:N/A:C
CWE-476 NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

http://www.securityfocus.com/bid/102924
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040375
Third Party Advisory
VDB Entry
https://github.com/KINGSABRI/CVE-in-Ruby/tree/master/CVE-2018-0833
Third Party Advisory
Exploit
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0833
Patch
Vendor Advisory
https://www.exploit-db.com/exploits/44189/
Third Party Advisory
Exploit
VDB Entry